[SAC] should we move to SSL only?
Alex Mandel
tech_dev at wildintellect.com
Wed Apr 9 14:21:26 PDT 2014
On 04/08/2014 03:14 PM, Martin Spott wrote:
> On Tue, Apr 08, 2014 at 10:08:35AM -0700, Alex Mandel wrote:
>
>> Thanks for raising this question again. I agree Logins should be forced
>> to https,
>
> +1
>
> Martin.
>
I can't think of a good reason not to do this. So we should audit and
fix all sites to force https for login pages.
Debate is still open about if once logged in we should force https.
Thanks,
Alex
More information about the Sac
mailing list